Degrees of separation for handling communications

ABSTRACT

A sender&#39;s degrees of separation from a recipient may be used to aid in spam filtering or to otherwise handle a communication. The “degrees of separation” represent a metric used to quantify whether/how the recipient is linked to the sender through intermediary people or other entities. A level of “trust” or “legitimacy” about a sender&#39;s communication can be inferred by looking at whether the sender is linked to an intended recipient. Typically, user contact lists (e.g., address book, buddy list, and/or white list) are evaluated to determine the number of degrees (or hops) are required to link or relate two users.

CLAIM OF PRIORITY

This application claims priority to U.S. Provisional Application No. 60/459,272, filed on Apr. 2, 2003, which is incorporated by reference.

TECHNICAL FIELD

This description relates to handling communications.

BACKGROUND

With the advent of the Internet and a decline in computer prices, many people are communicating with one another through computers interconnected by networks. A number of different communication mediums have been developed to facilitate such communications. One prolific communication medium is electronic mail (e-mail).

Unfortunately, because the costs of sending e-mail are relatively low, e-mail recipients are being subjected to mass, unsolicited, commercial e-mailings (colloquially known as e-mail spam or spam e-mail). These are akin to junk mail sent through the postal service. However, because spam e-mail requires neither paper nor postage, the costs incurred by the sender of spam e-mail are quite low when compared to the costs incurred by conventional junk mail senders. Due to this and other factors, a significant amount of spam e-mail is sent to e-mail users on a daily basis.

Spam e-mail impacts both e-mail users and e-mail providers. For an e-mail user, spam e-mail can be disruptive, annoying, and time consuming. For an e-mail service provider, spam e-mail represents tangible costs in terms of storage and bandwidth usage. These costs may be substantial when large numbers of spam e-mails are sent.

SUMMARY

In one aspect, techniques for handling a communication from a sender to an intended recipient are described. A communication is received from a sender. The communication is directed to an intended recipient. The sender of the communication and the intended recipient of the communication are identified. A determination is made as to whether the sender and the intended recipient are linked by less than a threshold number of degrees of separation. Based at least in part on whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation, a determination is made as to whether the communication is a spam communication.

Implementations of this aspect may include one or more of the following features. For example, determining whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation may include determining whether the sender and the intended recipient are linked by at least one intermediary entity. How many intermediary entities are needed to link the sender to the intended recipient may be determined and whether the communication is a spam communication may be determined based on how many intermediary entities are needed to link the sender to the intended recipient.

Determining whether the sender is linked to the intended recipient by at least one intermediary entity may include accessing a contact list of the intended recipient to determine at least one contact on the contact list. Accessing a contact list of the intended recipient may include accessing a contact list with communication identifiers related to the same or a different type of communication than the communication from the sender to the intended recipient. For example, the contact list of the intended recipient may include an address book; a buddy list; a personal phone book; or a white list. The communication may be, for instance, an e-mail message; an instant message; an SMS message; or a telephone call.

Determining whether the communication is a spam communication may include determining a spam rating for the communication based on whether the sender is linked to the intended recipient by less than a threshold number of degrees of separation; and designating the communication as spam or blocking the communication when the spam rating exceeds a classification threshold. How many intermediary entities link the sender to the intended recipient may be determined and determining the spam rating may include determining the spam rating for the communication based on how many intermediary entities link the sender to the intended recipient.

The communication may be exempted from the determination of whether the communication is a spam communication when less than M intermediary entities link the sender to the intended recipient or when greater than M+X entities link the sender to the intended recipient. Whether the communications is a spam communication may be determined when between M+1 and M+X intermediary entities link the sender and the intended recipient.

Determining whether the sender and the intended recipient are linked by at least one intermediary entity may include accessing a contact list of the intended recipient to determine a first contact on the intended recipient's contact list; and accessing a contact list of the first contact to determine a second contact on the first contact's contact list.

In another aspect, a communication from a sender is received. The communication is directed to an intended recipient. The sender and the intended recipient of the communication are identified. A contact list of the intended recipient is accessed. The contact list contains communication identifiers related to a different type of communication than the communication from the sender. Whether the sender and the intended recipient are linked by less than a threshold number of degrees of separation is determined based on the communication identifiers in the contact list that are related to a different type of communication than the communication from the sender. The communication is handled based on whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation.

Implementations of this aspect may include one or more of the following features. For example, determining whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation may include determining whether the sender and the intended recipient are linked by at least one intermediary entity based on the contact list. The communication may be an e-mail message and the communication identifiers in the contact list may relate to a communication type other than e-mail messages. The communication may be an instant message and the communication identifiers in the contact list relate to a communication type other than instant messages. The communication may be an SMS message and the communication identifiers in the contact list may relate to a communication type other than SMS messages. The communication may be a telephone call and the communication identifiers in the contact list may relate to a communication type other than telephone calls.

How many intermediary entities are needed to link the sender to the intended recipient may be determined. Whether the communication is a spam communication may be based on how many intermediary entities are needed to link the sender to the intended recipient.

The contact list of the intended recipient may include an address book; a buddy list; a personal phone book; or a white list. Handling the communication may include using whether the sender and the intended recipient are linked by less than a threshold number of degrees of separation to determine if the communication is spam.

Handling the communication may include exempting the communication from filtering if the sender is linked to the intended recipient. Handling the communication may include determining a spam rating for the communication based on whether the sender is linked to the intended recipient by less than a threshold number of degrees of separation; and designating the communication as spam or blocking the communication when the spam rating exceeds a classification threshold. The spam rating for the communication may be determined based on how many intermediary entities link the sender to the intended recipient.

Handling the communication may include handling the communication differently based on how many intermediary entities link the sender to the intended recipient. Handling the communication differently may include exempting the communication from filtering if less than M intermediary entities link the sender to the intended recipient; subjecting the communication to filtering if between M+1 and M+X intermediary entities link the sender to the intended recipient; and/or discarding the communication if greater than M+X entities link the sender to the intended recipient.

Determining whether the sender and the intended recipient are linked by at least one intermediary entity may include determining a first contact on the contact list of the intended recipient; and accessing a contact list of the first contact to determine a second contact on the first contact's contact list.

Handling the communication may include invoking a knock-knock interface when the sender and the intended recipient are not linked by less than the threshold number of degrees of separation.

Implementations of the described techniques may include hardware, a method or process, or computer software on a computer-accessible medium.

The details of one or more implementations are set forth in the accompanying drawings and the description below. Other features will be apparent from the description and drawings, and from the claims.

DESCRIPTION OF DRAWINGS

FIG. 1 is a diagram showing an exemplary networked computing environment that supports e-mail communications and in which spam filtering may be performed.

FIG. 2 is an illustration showing an exemplary address book that may be displayed to a user of an e-mail client program.

FIG. 3 is an illustration showing an interface that allows an e-mail client program user to add contacts to a white list.

FIG. 4 is a flow chart of a process for using an e-mail sender's degrees of separation from a mail recipient to aid in spam filtering.

FIG. 5 is a flow chart of an alternate process for using a sender's degrees of separation from a mail recipient to aid in spam filtering.

FIG. 6 is an illustration showing an exemplary interface that may be used to allow a user to adjust preferences with regard to the degrees of separation feature.

DETAILED DESCRIPTION

In general, the degree of separation between a sender and an intended recipient is used to inform filtering of a communication sent from the sender to the intended recipient. The degree of separation between two entities describes a relationship between those entities.

Typically, user contact lists (e.g., address book, buddy list, and/or white list) are evaluated to determine the number of degrees (or hops) that are required to link or relate two users.

For example, recipient A may list user B in recipient A's address book, user B may list user C in user B's address book, and user C may list sender D in user C's address book. Here, sender D is linked to recipient A by two degrees of separation (with user B as the first degree and user C as the second degree). Recipient A is related to user C by one degree of separation (user B) and user B is separated from sender D by one degree of separation (user C). Recipient A and user B, users B and C, and user C and sender D are each respectively separated by zero degrees of separation.

The connectedness or lack of connectedness is used, possibly along with the degrees of separation, to aid the handling of communications sent to the recipient by the sender. For instance, handling may be informed based on: (1) whether a sender and a recipient are connected (i.e., the sender and the recipient are known to each other or the sender is known to the recipient); and (2) if they are connected, the number of degrees, hops or intermediaries required to link or relate the sender to the recipient.

The following description more fully describes these techniques as applied to e-mail spam filtering. However, the techniques may be applied to other communication media and to other filtering applications.

FIG. 1 illustrates an exemplary networked computing environment 100 that supports e-mail communications and in which spam filtering may be performed. Computer users are distributed geographically and communicate using client systems 110 a and 110 b. Client systems 110 a and 110 b are connected to Internet service provider (ISP) networks 120 a and 120 b, respectively. Clients 110 a and 110 b may be connected to the respective ISP networks 120 a and 120 b through various communication channels such as a modem connected to a telephone line (using, for example, serial line internet protocol (SLIP) or point-to-point protocol (PPP)) or a direct network connection (using, for example, transmission control protocol/internet protocol (TCP/IP)). E-mail servers 130 a and 130 b also are connected to ISP networks 120 a and 120 b, respectively. ISP networks 120 a and 120 b are connected to a global network 140 (e.g., the Internet) such that a device on one ISP network 120 a or 120 b can communicate with a device on the other ISP network 120 a or 120 b. For simplicity, only two ISP networks 120 a and 120 b have been illustrated as connected to Internet 140. However, there may be a large number of such ISP networks connected to Internet 140. Likewise, many e-mail servers and many client systems may be connected to each ISP network.

Each of the client systems 110 a and 110 b and the e-mail servers 130 a and 130 b may be implemented using, for example, a general-purpose computer capable of responding to and executing instructions in a defined manner, a personal computer, a special-purpose computer, a workstation, a server, a device, a component, or other equipment or some combination thereof capable of responding to and executing instructions. Client systems 110 a and 110 b and e-mail servers 130 a and 130 b may receive instructions from, for example, a software application, a program, a piece of code, a device, a computer, a computer system, or a combination thereof, which independently or collectively direct operations. These instructions may take the form of one or more communications programs that facilitate communications between the users of client systems 110 a and 110 b. Such communications programs may include, for example, e-mail programs, IM programs, file transfer protocol (FTP) programs, or voice-over-IP (VoIP) programs. The instructions may be embodied permanently or temporarily in any type of machine, component, equipment, storage medium, or propagated signal that is capable of being delivered to a client system 110 a and 110 b or the e-mail servers 130 a and 130 b.

Each of client systems 110 a and 110 b and e-mail servers 130 a and 130 b includes a communications interface (not shown) used by the communications programs to send communications. The communications may include e-mail, audio data, video data, general binary data, or text data (e.g., data encoded in American Standard Code for Information Interchange (ASCII) format).

Examples of ISP networks 120 a and 120 b include Wide Area Networks (WANs), Local Area Networks (LANs), analog or digital wired and wireless telephone networks (e.g., a Public Switched Telephone Network (PSTN), an Integrated Services Digital Network (ISDN), or a Digital Subscriber Line (xDSL)), or any other wired or wireless network.

Networks 120 a and 120 b may include multiple networks or subnetworks, each of which may include, for example, a wired or wireless data pathway.

Each of e-mail servers 130 a and 130 b may handle e-mail for thousands or more e-mail users connected to an ISP network 120 a or 120 b. Each e-mail server may handle e-mail for a single e-mail domain (e.g., aol.com) or for multiple e-mail domains. In addition, each e-mail server may be composed of multiple, interconnected computers working together to provide e-mail service for e-mail users of the corresponding ISP network.

An e-mail user, such as a user of client system 110 a or 110 b, typically has one or more e-mail accounts on an e-mail server 130 a or 130 b. Each account corresponds to an e-mail address. Each account (otherwise referred to as a user mailbox) may have one or more folders in which e-mail is stored. E-mail sent to one of the e-mail user's e-mail addresses is routed to the corresponding e-mail server 130 a or 130 b and placed in the account that corresponds to the e-mail address to which the e-mail was sent. The e-mail user then uses, for example, an e-mail client program executing on client system 110 a or 110 b to retrieve the e-mail from e-mail server 130 a or 130 b and view the e-mail. The e-mail client program may be, for example, a web browser (in the case of HTML mail), a stand-alone e-mail program, or an e-mail program that is part of an integrated suite of applications.

The e-mail client programs executing on client systems 110 a and 110 b also may allow one of the users to send e-mail to an e-mail address. For example, the e-mail client program executing on client system 110 a may allow the e-mail user of client system 110 a (the sender) to compose an e-mail message and address the message to a recipient address, such as an e-mail address of the user of client system 110 b. When the sender indicates the e-mail is to be sent to the recipient address, the e-mail client program executing on client system 110 a communicates with e-mail server 130 a to handle the sending of the e-mail to the recipient address. For an e-mail addressed to an e-mail user of client system 110 b, for example, e-mail server 130 a sends the e-mail to e-mail server 130 b. E-mail server 130 b receives the e-mail and places the e-mail in the account that corresponds to the recipient address. The user of client system 110 b may then retrieve the e-mail from e-mail server 130 b, as described above.

To aid a user in sending e-mails, many e-mail client programs or other programs allow a user to maintain an address book. An address book is a list of the user's contacts along with their contact information. An address book may contain a contact's e-mail address, instant messaging screenname, street address, and/or telephone number(s). The address book may be stored on the client system or on a server, and may be accessed by the client program.

FIG. 2 illustrates an exemplary address book 200 that may be displayed to a user of an e-mail client program. Address book 200 includes a list box 210 that contains a list 215 of the user's contacts. Only a single contact, John Smith, is shown in contact list 215, though a contact list may contain multiple entries. When a contact in contact list 215 is selected, the contact's information 225 is shown in a box 220. The information contains, for example, the contact's name, the contact's screenname, and the contact's e-mail address.

In an e-mail environment such as that shown in FIG. 1, a spammer typically uses an e-mail client program to send similar spam e-mails to hundreds, if not thousands, of e-mail recipients. For example, a spammer may target hundreds of recipient e-mail addresses serviced by e-mail server 130 b on ISP network 120 b, and may maintain the list of targeted recipient addresses as a distribution list. The spammer may use the e-mail client program to compose a spam e-mail and may instruct the e-mail client program to use the distribution list to send the spam e-mail to the recipient addresses. The e-mail then is sent to e-mail server 130 b for delivery to the recipient addresses.

Filtering traditionally has been used to eliminate or at least reduce some spam e-mail. Filtering may be done on the server-side, e.g. at e-mail server 130 b, or on the client-side, e.g. at client 110 b. Thus, a spam filter may be located on the server or the client. Wherever located, the spam filter may analyze e-mail coming into the server or client to determine whether any of the e-mail is spam. Once the filter designates a piece of e-mail as spam, the e-mail is treated accordingly. For example, the spam e-mail may be deleted or placed in a specific spam folder.

A spam filter may be implemented using a number of techniques. One technique that has been used is simple text filtering, in which an e-mail's headers and/or the e-mail body is searched for simple text strings or regular expressions and the e-mail is classified as spam based on whether the string or expression is present. Other techniques analyze word or other features of an e-mail to develop a rating or probability measure of the likelihood that the e-mail is spam, and then compare the rating or measure to a classification threshold. If the rating or measure exceeds the threshold, the e-mail is designated as spam. The techniques used to develop the ratings may be, for example, heuristic or Bayesian based.

The spam filter also may employ so-called white lists and/or black lists. A black list is a list of e-mail domains, specific e-mail addresses, or IP addresses that are considered to be a source of spam. Any e-mail received from a blacklisted domain, e-mail address or IP address is designated by the filter as spam.

A white list typically is used to help ensure that legitimate e-mail is delivered to the recipient. Similar to a black list, a white list is a list of e-mail domains, specific e-mail addresses, or IP addresses. The items on a white list, however, generally are considered to be sources of legitimate e-mail. Consequently, any e-mail received from a source on the white list is designated as legitimate e-mail (i.e., non-spam) and exempted from further filtering.

FIG. 3 illustrates an interface 300 that allows an e-mail client program user to add contacts to a white list. Interface 300 includes a list box 310 that contains a list of contacts 315. Interface 300 also includes an edit box 320 and “Add” button 330 for adding additional contacts to list 315. A radio button 340 is included in interface 300 to allow the user to designate list 315 as a white list (i.e. to allow e-mail from the listed contacts to be delivered without being subjected to spam filtering).

An e-mail sender's degree of separation from a mail recipient also may be used to aid in spam filtering. The “degree of separation” represents a metric used to quantify whether/how the recipient is linked to the sender through intermediary people or other entities. For example, a recipient may know a first user (first degree of separation) and the first user may know a second user (second degree of separation) who knows the sender of an e-mail. In this case, the sender is separated from the recipient by two degrees of separation (i.e., by two intermediate contacts). A level of “trust” or “legitimacy” about a sender's communication can be inferred by looking at whether the sender is linked to a recipient through the recipient's contacts, the recipient's contacts' contacts, or otherwise, with the level of trust typically diminishing as the number of degrees of separation increases. For instance, a system or user may consider a communication based on more degrees of separation between the sender and recipient as less likely to be legitimate or trusted than one with fewer degrees of separation.

A trusted list of contacts linked to a user/recipient may be developed for use with a spam filter when filtering. The trusted list may be developed, for example, by evaluating a contact list for the intended recipient that lists the intended recipient's contacts as more fully described below. The contact list may contain communication identifiers related to the type of communication that is received (e.g., a buddy list may be accessed when the type of communication is an instant message, while an address book may be referenced when the type of communication being filtered is an e-mail communication or telephone call), or the contact list may contain communication identifiers related to a different type of communication than the one that is sent (e.g., a buddy list may be accessed when the communication is an e-mail), or a combination of similar and different types of contact lists may be accessed. Further, a single contact list may have both communication identifiers related to the type of communication received and communication identifiers related to a different type of communication than the one received. Whether a contact is linked to an intended recipient may be based on communication identifiers related to the type of communication received or may be based on communication identifiers related to a different type of communication than the one received.

Thus, for example, a contact may be determined as linked to an intended recipient based on an IM screen names. This contact, however, may be placed in a trusted list that is used for e-mail communications. In other words, a contact may be determined to be linked to the intended recipient based on one type of communication, and this link is used for other types of communications. The link based on IM screen names may be determined, for instance, by accessing a buddy list of the intended recipient or by accessing a central contact list that contains e-mail addresses and IM screen names.

The trusted list may simply contain a communication identifier (e.g., e-mail address or screenname) for the linked contacts, or the trusted list also may contain the degrees of separation between the user and the linked contacts, depending on how the trusted list is used to facilitate spam filtering. The trusted list also may contain other information about a linked contact. The following is an example of a trusted list that contains a communication identifier and the degrees of separation for each linked contact:

Trusted List Screennames Degrees of Separation randomcontact 2 Jsmith 3 internetann 1 chattinchuck 4

Depending on the spam filtering techniques employed by the spam filter, the trusted list may be used simply as a white list to exempt from spam filtering those e-mails from the linked contacts. Similarly, the trusted list may be used simply as a white list to allow only communications from those entities on the white list to be delivered to the intended recipient, with all other communications being prevented from reaching the intended recipient.

Alternatively, the presence or absence of a sender on the trusted list (and possibly the sender's degrees of separation) may be considered a feature of an e-mail when determining whether the e-mail is spam. For example, for a spam filter that heuristically develops a rating of the likelihood that an e-mail is spam, the presence in the trusted list may decrease the rating, with lower degrees of separation decreasing the rating more than higher degrees of separation. For a Bayesian spam filter, the presence or absence on the trusted list, along with the degrees of separation, may be considered a feature for both training and classification. The degrees of separation may be used with other features of the e-mail to determine a spam rating. The other features may include, for example, origin IP address, origin domain, mime-types contained in the e-mail, sender's address, and specific words in the body of the e-mail.

Alternatively, or additionally, e-mail may be treated differently based on the sender's degrees of separation. For example, e-mail whose sender is within 1 to M degrees of separation may be exempted from filtering, e-mail whose sender is within M+1 to M+X degrees of separation may be treated as unknown and consequently filtered, and e-mail whose sender is not linked or is linked by a degree of separation greater than M+X may be automatically discarded as spam. Other ways of treating the e-mail are possible, as are other ways of dividing up the relevant degrees of separation.

FIG. 4 is a flow chart of a process 400 for using an e-mail sender's degrees of separation from a mail recipient to aid in spam filtering. A list of contacts is maintained for the recipient (410). The list of contacts may be any personally maintained list, for example, an address book, a buddy list for instant messaging, and/or a white list. The rest of process 400 will be described using an address book as an example of a list of contacts.

The contacts in the recipient's address book are added to a trusted list of the recipient (420). If the trusted list contains, for example, e-mail addresses, but the contact list only contains screennames, then the contacts' e-mail addresses may be looked-up using, for example, a database that correlates information such as a user's e-mail address and IM screennames.

Next, the contacts linked to the recipient (i.e., up to a desired degree of separation) are identified and added to the trusted list. To do so, the address books of each contact in the recipient's address book are accessed (430). The contacts in the recipient's contacts' address books (i.e., the contacts separated by one degree) then are added to the trusted list (440). If another degree of separation is desired (450), the degree of separation is incremented (460) such that the address books of the contacts that are separated from the recipient by one degree are accessed (430) and the contacts in those address books are added to the trusted list (440). When a contact is added to the trusted list, the contact's degree of separation from the recipient also may be added. The addition of contacts continues until the desired degree of separation is reached (450). Once the desired degree of separation has been reached, the trusted list is input to the spam filter for use in filtering spam (470).

Process 400 may be performed before an e-mail is received and the trusted list may be stored for use with the spam filter. Alternatively, process 400 may be performed whenever an e-mail is received.

Process 400 may result in the trusted list not being updated when any users related to the intended recipient update their contact lists. That is, if a user related to the intended recipient adds a contact to the user's contact list, the new contact may not be reflected in the intended recipient's trusted list. This situation may not be overly detrimental, particularly in implementations where the trusted list is used as a white list to exempt certain e-mails from spam filtering. However, repeating process 400 on a periodic or aperiodic basis may mitigate this situation. Another manner of mitigating this situation is to use an update system in which changes to contact lists are tracked and trusted lists are updated accordingly in an incremental fashion or by triggering an update or re-initiation of process 400 when an update occurs. The alternate process 500 illustrated in FIG. 5 also may mitigate such a situation.

FIG. 5 is a flow chart of an alternate process 500 for using a sender's degrees of separation from a mail recipient to aid in spam filtering. When an e-mail is received (510), the sender's address is retrieved from the e-mail (520). A search then is performed to determine the sender's degree of separation from the recipient (530). In one implementation, to perform the search, the contacts in the recipient's address book (i.e., the contacts separated by zero degrees) are searched to determine if the sender is among those contacts. If not, then the address books of one or more contacts in the recipient's address book are accessed and searched to determine if the sender is among those contacts. If the sender is not among those contacts, and another degree of separation is desired, the degree of separation is incremented such that the address books of the contacts that are separated from the recipient by one degree are accessed and searched to determine if the sender is among those contacts. This continues until the desired degree of separation has been reached. At that point, if the sender has not been located, then the sender is not considered to be linked to the recipient. An indication of whether the sender is linked to the intended recipient, and possibly also the sender's degree of separation from the intended recipient, are input to a spam filter for use in determining whether the e-mail is spam (540).

Process 400 or process 500 may be implemented by the server, by the client, or by a combination of both.

The contact lists of the users may be stored centrally or in a distributed fashion. For example, the techniques may be applied to an environment in which all of the users' contact lists are stored on a single server (completely centralized), or on a single cluster of servers owned by the same e-mail service provider (partially centralized/distributed).

The contact lists may be stored in a more fully distributed fashion by being stored on different servers owned by different e-mail service providers (which may or may not adopt a standardized protocol for sharing information such as contact lists), or by being stored on each client system (i.e., each user's contact list is stored on the user's client system). If the contact lists are stored on the client (e.g., a client running Microsoft Outlook), the accessing and searching of the contacts' address books or other contact lists may be performed using peer-to-peer techniques. When contact lists are stored on the clients, privacy and security measures may be implemented, such as hashing the trusted list or otherwise making it unreadable to the user, so that the user can not determine who is listed in his or her contacts' lists or otherwise have access to someone's contact information that has not been specifically given to the user. For example, if a recipient has only one contact in his or her contact list and only one degree of separation is used, then the recipient may be able to discern who that single contact has on his or her contact list. Making the trusted list unreadable to its “owner” may eliminate this potential issue.

In a distributed environment in which different contact lists are maintained on servers of different providers, a trusted group model may be implemented to allow access to the different contact lists, as needed, to develop the degrees of separation between a recipient and a sender. For example, if the user of client system 110 b has an account on e-mail server 130 b and the user's address book is maintained on server 130 b, the user's address book (or the user's contacts' address books) may include contacts with address books maintained on a server owned by a different provider, such as, for example, server 130 a. Generally, the provider of server 130 a would not allow outside parties to access the contact lists of its users. To implement the foregoing techniques, however, a trusted group model may be developed that allows server 130 b to access the address books or other contact lists of the users whose accounts are maintained on server 130 a. In this way, server 130 b may be able to determine the linked contacts, even if some of the contact lists are on server 130 a. Thus, for instance, e-mail service providers such as America Online (AOL) and Hotmail may cooperate to allow access to users' contact lists so as to increase the effectiveness of the foregoing techniques. Also, for example, two corporations, each running an e-mail server (e.g., a Microsoft Exchange server), a corporation and an ISP, or any two e-mail service providers may cooperate to allow access to users' contact lists.

Regardless of whether a client-side or server-side implementation is used, for some implementations the foregoing techniques may be limited out of privacy or security concerns similar to those described above with regard to storing the contact lists at the client. For example, if a recipient has only one contact in his or her contact list and only one degree of separation is used, then the recipient may be able to discern who that single contact has on his or her contact list if restrictions are not applied.

The use of the foregoing techniques may be limited such that the techniques are not performed when the number of contacts in a recipient's contact list is below a predetermined number. Also, there may be a requirement that a minimum number of degrees of separation are searched. Other limitations may include limiting a user's ability to perceive his or her trusted list. Preventing the user's ability to perceive or access the trusted list may be accomplished by preventing the display of the trusted list, storing the trusted list remote from the user, or, as described above, storing the trusted list as a hash.

The foregoing techniques also may be limited such that a contact list is not used when the contact list does not contain the recipient. In other words, the contact lists of users who do not include the recipient are not used to determine contacts at the next level of separation. For example, if user A is a mail recipient, a user B that is in user A's address book may be indicated as a linked user. When user B's address book contains user A, user B's address book is used for the next degree of separation, which results in a user C (who is in user B's address book) as being linked to user A. However, because user C's address book does not contain user A, user C's address book is not used when a search is done for the next degree of separation.

The techniques are described as being applied to e-mail spam filtering. However, the techniques may be used for spam filtering of communications in other communication media, including both text and non-text media. For example, the techniques may be applied to instant messaging. In such an environment, an instant messaging buddy list or an address book may be used as the contact list, and the trusted list may contain the screennames of linked contacts. The trusted list may be input into a spam filter that prevents spam instant messages. Another example of an environment in which the foregoing techniques may be implemented is short messaging service (SMS) communications used in cell phones. In this case, a phone book for the cell phone may be used as the contact list. As another example, these techniques may be used to filter telephone calls based on a user's contact list, such as a personal phone book or an address book, particularly if the telephone calls are carried over packet networks such as the Internet.

The above techniques also may be extended to apply to the general handling, classification, or filtering of communications. For example, a recipient may want messages from senders who are linked to the recipient to be classified as important, while other messages are classified as low priority. Similarly, a Bayesian classifier may be used to classify received e-mail into classes other than spam. The Bayesian classifier may be trained with a set of e-mail that includes information about whether a sender of the e-mail is linked to the recipient and, if so, by how many degrees. The Bayesian classifier then may use the information when classifying an unknown e-mail.

As another example of general handling of communications, the handling in an instant messaging implementation (or other implementations) may include bypassing or invoking a “knock-knock” interface. At times, when a sender sends an intended recipient an instant message, instead of receiving the instant message right away, the intended recipient's instant messaging program invokes a “knock-knock” interface. The interface typically informs the intended recipient that the sender is trying to instant message him or her, identifies the sender (e.g., by displaying the screen name of the sender), and provides the intended recipient with an option of accepting the message. If the intended recipient indicates that he or she wishes to accept the instant message, it is delivered to the intended recipient and displayed to the intended recipient. On the other hand, if the intended recipient indicates he or she would not like to receive the message, the message is not provided to the intended recipient and, for example, may be discarded. In some implementations, the sender also is placed on a block list when the intended recipient indicates he or she does not want to receive an instant message from the sender. The block list is used to prevent further instant message communications from users on the block list without bothering the intended recipient, i.e., instant messages from users on the block list are automatically ignored without asking the intended recipient whether he or she wants to receive them.

The trusted list may be used to determine when to invoke a knock-knock interface. To do so, whether a knock-knock interface is invoked may depend on the number of degrees of separation between the sender and the intended recipient. In one implementation, instant messages from senders less than or equal to n degrees away from the intended recipient are provided to the intended recipient automatically without a knock-knock interface being invoked, while a knock-knock interface is invoked for instant messages from senders greater than n degrees away from the intended recipient. Alternatively, instant messages from senders within 1 to M degrees may be provided to the intended recipient without a knock-knock interface being invoked, instant messages from senders within M+1 to N degrees may cause a knock-knock to be invoked, while instant messages from senders greater than N degrees away may be automatically discarded without invoking a knock-knock interface or otherwise informing the intended recipient.

The above techniques have been described as creating a “trusted” list. However, these techniques could be used to source a “non-trusted” list by adding the black lists (or other lists denoting untrusted senders) of linked contacts to a non-trusted list for the intended recipient, at least up to a threshold degree of separation. The non-trusted list may then, for example, be used as a black list, or may be a factor for spam filtering.

Creating such a non-trusted list may be used in conjunction with developing the trusted list. For example, for each or a subset of the contacts added to the trusted list, the entities on the added contacts' black lists (or other lists denoting untrusted senders) can be placed on the intended recipient's non-trusted list. As another example, when a contact's contact list is accessed and added to the trusted list, the contact's list of untrusted senders also may be accessed and added to the non-trusted list.

FIG. 6 illustrates an exemplary interface 600 that may be used to allow a user to adjust preferences with regard to the degrees of separation feature. Some implementations may provide a user the ability to decide whether degrees of separation will be used, and, if so, how many degrees should be used. Exemplary interface 600 includes a text 605 that explains to the user that the user may decide to have his or her white list populated using degrees of separation and that the user may select how many degrees to use. Text 605 includes a hyperlinked portion 610 that, when selected by the user, invokes an interface (not shown) that provides information about degrees of separation.

Interface 600 also has a check box 615 that allows a user to select whether degrees of separation should be used to develop his or her white list. When check box 615 is not checked, degrees of separation will not be used. When check box 615 is checked, degrees of separation will be used.

Interface 600 additionally has an edit box 620 that allows a user to select how many degrees will be used to develop the white list. When check box 615 is not checked, edit box 620 becomes inactive and is grayed out. When check box 615 is checked, however, edit box 620 becomes active and the user is able to enter the number of degrees to be used.

An OK button 625 is available on interface 600 to allow the user to indicate that the preferences selected in interface 600 should be saved. A Cancel button 630 cancels the preferences without saving them.

Other implementations may provide varying levels of user control. For instance, the user may be able to select whether white lists (or other trusted lists) are used, but without any control over whether degrees of separation are used. That is, the system may automatically use degrees of separation when the user chooses to use white lists or other trusted lists. Alternatively, for example, a system may use the white lists or other trusted lists and degrees of separation without providing the user control over either.

The techniques described above are not limited to any particular hardware or software configuration. Rather, they may be implemented using hardware, software, or a combination of both. The methods and processes described may be implemented as computer programs that are executed on programmable computers comprising at least one processor and at least one data storage system. The programs may be implemented in a high-level programming language and may also be implemented in assembly or other lower level languages, if desired.

Any such program will typically be stored on a computer-usable storage medium or device (e.g., CD-Rom, RAM, or magnetic disk). When read into the processor of the computer and executed, the instructions of the program cause the programmable computer to carry out the various operations described above.

A number of implementations have been described. Nevertheless, it will be understood that various modifications may be made. Accordingly, other implementations are within the scope of the following claims. 

1. A method for handling a communication from a sender to an intended recipient, the method comprising: receiving a communication from a sender, wherein the communication is directed to an intended recipient; identifying the sender of the communication; identifying the intended recipient of the communication; accessing a contact list of the intended recipient, the contact list of the intended recipient being maintained in association with a different form of communication than the communication from the sender to the intended recipient and including at least a first user identifier associated with the different form of communication; accessing a contact list of the first user identifier, the contact list of the first user identifier including at least a second user identifier; determining, based in part on the accessed first contact list and the accessed second contact list, whether the sender and the intended recipient are linked by less than a threshold number of degrees of separation; and determining whether the communication is a spam communication based at least in part on whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation.
 2. The method of claim 1 further comprising: determining how many intermediary entities are needed to link the sender to the intended recipient; and determining whether the communication is a spam communication based on how many intermediary entities are needed to link the sender to the intended recipient.
 3. The method of claim 1 wherein the contact list of the first user identifier is maintained is association with the type of communication that includes the communication from the sender to the recipient.
 4. The method of claim 1 wherein the contact list of the intended recipient comprises an address book.
 5. The method of claim 1 wherein the contact list of the intended recipient comprises a buddy list.
 6. The method of claim 1 wherein the contact list of the intended recipient comprises a personal phone book.
 7. The method of claim 1 wherein the contact list of the intended recipient comprises a white list.
 8. The method of claim 1 wherein the communication is an e-mail message.
 9. The method of claim 1 wherein the communication is an instant message.
 10. The method of claim 1 wherein the communication is an SMS message.
 11. The method of claim 1 wherein the communication is a telephone call.
 12. The method of claim 1 wherein determining whether the communication is a spam communication further comprises: determining a spam rating for the communication based on whether the sender is linked to the intended recipient by less than a threshold number of degrees of separation; and designating the communication as spam or blocking the communication when the spam rating exceeds a classification threshold.
 13. The method of claim 12 further comprising determining how many intermediary entities link the sender to the intended recipient; wherein determining the spam rating further comprises determining the spam rating for the communication based on how many intermediary entities link the sender to the intended recipient.
 14. The method of claim 1 further comprising: determining how many intermediary entities link the sender to the intended recipient; exempting the communication from the determination of whether the communication is a spam communication when less than M intermediary entities link the sender to the intended recipient or when greater than M+X entities link the sender to the intended recipient; and wherein determining whether the communication is a spam communication comprises determining whether the communications is a spam communication when between M+1 and M+X intermediary entities link the sender and the intended recipient.
 15. A non-transitory computer-usable medium storing a computer program for handling a communication from a sender to an intended recipient, the computer program comprising instructions for causing a computer to: receive a communication from a sender, wherein the communication is directed to an intended recipient; identify the sender of the communication; identify the intended recipient of the communication; access a contact list of the intended recipient, the contact list of the intended recipient being maintained in association with a different form of communication than the communication from the sender to the intended recipient and including at least a first user identifier associated with the different form of communication; access a contact list of the first user identifier, the contact list of the first user identifier including at least a second user identifier; determine, based in part on the accessed first contact list and the accessed second contact list, whether the sender and intended recipient are linked by less than a threshold number of degrees of separation; and determine whether the communication is a spam communication based at least in part on whether the sender and intended recipient are linked by less than a threshold number of degrees of separation.
 16. The medium of claim 15 further comprising instructions for causing the computer to: determine how many intermediary entities are needed to link the sender to the intended recipient; and determine whether the communication is a spam communication based on how many intermediary entities are needed to link the sender to the intended recipient.
 17. The medium of claim 15 wherein, the contact list of the first user identifier is maintained is association with the type of communication that includes the communication from the sender to the recipient.
 18. The medium of claim 15 wherein the contact list of the intended recipient comprises an address book.
 19. The medium of claim 15 wherein the contact list of the intended recipient comprises a buddy list.
 20. The medium of claim 15 wherein the contact list of the intended recipient comprises a personal phone book.
 21. The medium of claim 15 wherein the contact list of the intended recipient comprises a white list.
 22. The medium of claim 15 wherein the communication is an e-mail message.
 23. The medium of claim 15 wherein the communication is an instant message.
 24. The medium of claim 15 wherein the communication is an SMS message.
 25. The medium of claim 15 wherein the communication is a telephone call.
 26. The medium of claim 15 wherein, to determine whether the communication is a spam communication, the computer program comprises instructions for causing a computer to: determine a spam rating for the communication based on whether the sender is linked to the intended recipient by less than a threshold number of degrees of separation; and designate the communication as spam or blocking the communication when the spam rating exceeds a classification threshold.
 27. The medium of claim 26 further comprising instructions for causing a computer to: determine how many intermediary entities link the sender to the intended recipient; and wherein, to determine the spam rating, the computer program comprises instructions for causing a computer to determine the spam rating for the communication based on how many intermediary entities link the sender to the intended recipient.
 28. The medium of claim 15 further comprising instructions for causing a computer to: determine how many intermediary entities link the sender to the intended recipient; exempt the communication from the determination of whether the communication is a spam communication when less than M intermediary entities link the sender to the intended recipient or when greater than M+X entities link the sender to the intended recipient; and wherein determining whether the communication is a spam communication comprises determining whether the communication is a spam communication when between M+1 and M+X intermediary entities link the sender and the intended recipient.
 29. A method for handling a communication from a sender to an intended recipient, the method comprising: receiving a communication from a sender, wherein the communication is directed to an intended recipient; identifying the sender of the communication; identifying the intended recipient of the communication; accessing a contact list of the intended recipient, the contact list of the intended recipient being maintained in association with a different form of communication than the communication from the sender to the intended recipient and including at least a first user identifier associated with the different form of communication; accessing a contact list of the first user identifier, the contact list of the first user identifier including at least a second user identifier; determining, based in part on the accessed first contact list and the accessed second contact list, whether the sender and the intended recipient are linked by less than a threshold number of degrees of separation; and handling the communication based on whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation.
 30. The method of claim 29 wherein determining whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation includes determining whether the sender and the intended recipient are linked by at least one intermediary entity based on the contact list.
 31. The method of claim 30 wherein the communication is an e-mail message and the communication identifiers in the contact list relate to a communication type other than e-mail messages.
 32. The method of claim 30 wherein the communication is an instant message and the communication identifiers in the contact list relate to a communication type other than instant messages.
 33. The method of claim 30 wherein the communication is an SMS message and the communication identifiers in the contact list relate to a communication type other than SMS messages.
 34. The method of claim 30 wherein the communication is a telephone call and the communication identifiers in the contact list relate to a communication type other than telephone calls.
 35. The method of claim 30 further comprising: determining how many intermediary entities are needed to link the sender to the intended recipient; and determining whether the communication is a spam communication based on how many intermediary entities are needed to link the sender to the intended recipient.
 36. The method of claim 29 wherein the contact list of the intended recipient comprises an address book.
 37. The method of claim 29 wherein the contact list of the intended recipient comprises a buddy list.
 38. The method of claim 29 wherein the contact list of the intended recipient comprises a personal phone book.
 39. The method of claim 29 wherein the contact list of the intended recipient comprises a white list.
 40. The method of claim 30 wherein handling the communication comprises using whether the sender and the intended recipient are linked by less than a threshold number of degrees of separation to determine if the communication is spam.
 41. The method of claim 30 wherein handling the communication further comprises exempting the communication from filtering if the sender is linked to the intended recipient.
 42. The method of claim 30 wherein handling the communication further comprises: determining a spam rating for the communication based on whether the sender is linked to the intended recipient by less than a threshold number of degrees of separation; and designating the communication as spam or blocking the communication when the spam rating exceeds a classification threshold.
 43. The method of claim 42 further comprising determining how many intermediary entities link the sender to the intended recipient; wherein determining the spam rating further comprises determining the spam rating for the communication based on how many intermediary entities link the sender to the intended recipient.
 44. The method of claim 30 further comprising determining how many intermediary entities link the sender to the intended recipient; wherein handling the communication comprises handling the communication differently based on how many intermediary entities link the sender to the intended recipient.
 45. The method of claim 44 wherein handling the communication differently comprises: exempting the communication from filtering if less than M intermediary entities link the sender to the intended recipient; subjecting the communication to filtering if between M+1 and M+X intermediary entities link the sender to the intended recipient; and discarding the communication if greater than M+X entities link the sender to the intended recipient.
 46. The method of claim 29 wherein handling the communication includes invoking a knock-knock interface when the sender and the intended recipient are not linked by less than the threshold number of degrees of separation.
 47. The method of claim 46 wherein the communication is an instant message.
 48. A non-transitory computer-usable medium storing a computer program for handling a communication from a sender to an intended recipient, the computer program comprising instructions for causing a computer to: receive a communication from a sender, wherein the communication is directed to an intended recipient; identify the sender of the communication; identify the intended recipient of the communication; access a contact list of the intended recipient that contain communication identifiers the contact list of the intended recipient being maintained in association with a different form of communication than the communication from the sender to the intended recipient and including at least a first user identifier associated with the different form of communication; access a contact list of the first user identifier, the contact list of the first user identifier including at least a second user identifier; determine, based in part on the accessed first contact list and the accessed second contact list, whether the sender and the intended recipient are linked by less than a threshold number of degrees of separation; and handle the communication based on whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation.
 49. The medium of claim 48 wherein, to determine whether the sender and the intended recipient are linked by less than the threshold number of degrees of separation, the computer program comprises instructions for causing a computer to determining whether the sender and the intended recipient are linked by at least one intermediary entity based on the contact list.
 50. The medium of claim 49 wherein the communication is an e-mail message and the communication identifiers in the contact list relate to a communication type other than e-mail messages.
 51. The medium of claim 49 wherein the communication is an instant message and the communication identifiers in the contact list relate to a communication type other than instant messages.
 52. The medium of claim 49 wherein the communication is an SMS message and the communication identifiers in the contact list relate to a communication type other than SMS messages.
 53. The medium of claim 49 wherein the communication is a telephone call and the communication identifiers in the contact list relate to a communication type other than telephone calls.
 54. The medium of claim 49 wherein the computer program further comprises instructions for causing a computer to: determine how many intermediary entities are needed to link the sender to the intended recipient; and determine whether the communication is a spam communication based on how many intermediary entities are needed to link the sender to the intended recipient.
 55. The medium of claim 48 wherein the contact list of the intended recipient comprises an address book.
 56. The medium of claim 48 wherein the contact list of the intended recipient comprises a buddy list.
 57. The medium of claim 48 wherein the contact list of the intended recipient comprises a personal phone book.
 58. The medium of claim 48 wherein the contact list of the intended recipient comprises a white list.
 59. The medium of claim 49 wherein, to handle the communication, the computer program comprises instructions for causing a computer to use whether the sender and the intended recipient are linked by less than a threshold number of degrees of separation to determine if the communication is spam.
 60. The medium of claim 49 wherein, to handle the communication, the computer program further comprises instructions for causing a computer to exempting the communication from filtering if the sender is linked to the intended recipient.
 61. The medium of claim 49 wherein, to handle the communication, the computer program further comprises instructions for causing a computer to: determine a spam rating for the communication based on whether the sender is linked to the intended recipient by less than a threshold number of degrees of separation; and designate the communication as spam or blocking the communication when the spam rating exceeds a classification threshold.
 62. The medium of claim 61 wherein the computer program further comprises instructions for causing a computer to determine how many intermediary entities link the sender to the intended recipient; and to determine the spam rating, the computer program further comprises instructions for causing a computer to determine the spam rating for the communication based on how many intermediary entities link the sender to the intended recipient.
 63. The medium of claim 49 wherein the computer program further comprises instructions for causing a computer to determine how many intermediary entities link the sender to the intended recipient; wherein, to handle the communication, the computer program further comprises instructions for causing a computer to handle the communication differently based on how many intermediary entities link the sender to the intended recipient.
 64. The medium of claim 63 wherein, to handle the communication differently, the computer program further comprises instructions for causing a computer to: exempt the communication from filtering if less than M intermediary entities link the sender to the intended recipient; subject the communication to filtering if between M+1 and M+X intermediary entities link the sender to the intended recipient; and discard the communication if greater than M+X entities link the sender to the intended recipient.
 65. The medium of claim 48 wherein, to handle the communication, the computer program further comprises instructions for causing a computer to invoke a knock-knock interface when the sender and the intended recipient are not linked by less than the threshold number of degrees of separation.
 66. The medium of claim 65 wherein the communication is an instant message. 